CVE-2025-71313

UNKNOWN 0.0

PCI: endpoint: Add missing NULL check for alloc_workqueue()

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: Add missing NULL check for alloc_workqueue() alloc_workqueue() can return NULL on memory allocation failure. Without proper error checking, this may lead to a NULL pointer dereference when queue_work() is later called with the NULL workqueue pointer in epf_ntb_epc_init(). Add a NULL check immediately after alloc_workqueue() and return -ENOMEM on failure to prevent the driver from loading with an invalid workqueue pointer.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Jun 3, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

8b821cf761503b80d0bd052f932adfe1bc1a0088 < 314eab6740bcda504ef978be599f805de05ce6de 8b821cf761503b80d0bd052f932adfe1bc1a0088 < 03f336a869b3a3f119d3ae52ac9723739c7fb7b6

Linux / Linux

5.12

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/314eab6740bcda504ef978be599f805de05ce6de git.kernel.org: https://git.kernel.org/stable/c/03f336a869b3a3f119d3ae52ac9723739c7fb7b6